CVE-2026-22174

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.22

Description OpenClaw versions before 2026.2.22 inject the x-OpenClaw-relay-token header into Chrome CDP probe traffic on loopback interfaces. This allows local processes to capture the Gateway authentication token. An attacker controlling a loopback port can intercept CDP reachability probes to the /json/version API endpoint and reuse the leaked token as Gateway bearer authentication. The issue affects non-standard shared-user/shared-host installations where an untrusted local user or process can access the loopback relay port. Relevant code paths include src/browser/extension-relay.ts (getChromeExtensionRelayAuthHeaders), src/browser/cdp.helpers.ts (getHeadersWithAuth), and src/browser/chrome.ts (fetchChromeVersion). The issue results in local credential disclosure, potentially leading to further impact depending on the local deployment and enabled Gateway capabilities.

Recommendations Update OpenClaw to version 2026.2.22 or later.